Package eu.europa.esig.dss.spi

Class DSSRevocationUtils

java.lang.Object

eu.europa.esig.dss.spi.DSSRevocationUtils

public final class DSSRevocationUtils
extends Object

Utility class used to manipulate revocation data (OCSP, CRL)

Method Summary

Modifier and Type	Method	Description
static org.bouncycastle.cert.ocsp.OCSPResp	fromBasicToResp(byte[] basicOCSPRespBinary)	Convert a BasicOCSPResp in OCSPResp (connection status is set to SUCCESSFUL).
static org.bouncycastle.cert.ocsp.OCSPResp	fromBasicToResp(org.bouncycastle.cert.ocsp.BasicOCSPResp basicOCSPResp)	Convert a BasicOCSPResp in OCSPResp (connection status is set to SUCCESSFUL).
static org.bouncycastle.cert.ocsp.BasicOCSPResp	fromRespToBasic(org.bouncycastle.cert.ocsp.OCSPResp ocspResp)	This method returns the BasicOCSPResp from a OCSPResp.
static org.bouncycastle.cert.ocsp.BasicOCSPResp	getBasicOcspResp(org.bouncycastle.asn1.DERSequence derSequence)	This method allows to create a BasicOCSPResp from a DERSequence.
static String	getCRLRevocationTokenKey(String crlUrl)
static List<String>	getCRLRevocationTokenKeys(CertificateToken certificateToken)	Initialize a list revocation token keys String for CRLToken from the given CertificateToken
static ResponderId	getDSSResponderId(org.bouncycastle.cert.ocsp.RespID respID)	Transforms RespID to ResponderId
static byte[]	getEncoded(org.bouncycastle.cert.ocsp.OCSPResp ocspResp)
static byte[]	getEncodedFromBasicResp(org.bouncycastle.cert.ocsp.BasicOCSPResp basicOCSPResp)
static String	getJdbcKey(CertificateToken certificateToken, CertificateToken issuerCertificateToken)	Creates the identifier for a certain entry within jdbc.
static org.bouncycastle.cert.ocsp.CertificateID	getOCSPCertificateID(CertificateToken cert, CertificateToken issuerCert)	Returns the CertificateID for the given certificate and its issuer's certificate.
static org.bouncycastle.cert.ocsp.OCSPResp	getOcspResp(org.bouncycastle.asn1.DERSequence derSequence)	This method allows to create a OCSPResp from a DERSequence.
static String	getOcspRevocationKey(CertificateToken certificateToken, String ocspUrl)
static List<String>	getOcspRevocationTokenKeys(CertificateToken certificateToken)	Initialize a list revocation token keys String for OCSPToken from the given CertificateToken
static org.bouncycastle.operator.DigestCalculator	getSHA1DigestCalculator()
static org.bouncycastle.cert.ocsp.BasicOCSPResp	loadOCSPBase64Encoded(String base64Encoded)	This method loads an OCSP response from the given base 64 encoded string.
static org.bouncycastle.cert.ocsp.BasicOCSPResp	loadOCSPFromBinaries(byte[] binaries)	This method loads an OCSP response from the given binaries.
static boolean	matches(org.bouncycastle.cert.ocsp.CertificateID certId, org.bouncycastle.cert.ocsp.SingleResp singleResp)	fix for certId.equals methods that doesn't work very well.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

getBasicOcspResp

public static org.bouncycastle.cert.ocsp.BasicOCSPResp getBasicOcspResp(org.bouncycastle.asn1.DERSequence derSequence)

This method allows to create a BasicOCSPResp from a DERSequence. The value for response SHALL be the DER encoding of BasicOCSPResponse (RFC 2560).

Parameters:

derSequence - DERSequence to convert to BasicOCSPResp

Returns:

BasicOCSPResp

getOcspResp

public static org.bouncycastle.cert.ocsp.OCSPResp getOcspResp(org.bouncycastle.asn1.DERSequence derSequence)

This method allows to create a OCSPResp from a DERSequence.

Parameters:

derSequence - DERSequence to convert to OCSPResp

Returns:

OCSPResp

fromRespToBasic

public static org.bouncycastle.cert.ocsp.BasicOCSPResp fromRespToBasic(org.bouncycastle.cert.ocsp.OCSPResp ocspResp)

This method returns the BasicOCSPResp from a OCSPResp.

Parameters:

ocspResp - OCSPResp to analysed

Returns:

fromBasicToResp

public static org.bouncycastle.cert.ocsp.OCSPResp fromBasicToResp(org.bouncycastle.cert.ocsp.BasicOCSPResp basicOCSPResp)

Convert a BasicOCSPResp in OCSPResp (connection status is set to SUCCESSFUL).

Parameters:

basicOCSPResp - the BasicOCSPResp to be converted to OCSPResp

Returns:

the result of the conversion

getEncodedFromBasicResp

public static byte[] getEncodedFromBasicResp(org.bouncycastle.cert.ocsp.BasicOCSPResp basicOCSPResp)

fromBasicToResp

public static org.bouncycastle.cert.ocsp.OCSPResp fromBasicToResp(byte[] basicOCSPRespBinary)

Convert a BasicOCSPResp in OCSPResp (connection status is set to SUCCESSFUL).

Parameters:

basicOCSPRespBinary - the binary of BasicOCSPResp

Returns:

an instance of OCSPResp

matches

public static boolean matches(org.bouncycastle.cert.ocsp.CertificateID certId,
                              org.bouncycastle.cert.ocsp.SingleResp singleResp)

fix for certId.equals methods that doesn't work very well.

Parameters:

certId - CertificateID

singleResp - SingleResp

Returns:

true if the certificate matches this included in SingleResp

getOCSPCertificateID

public static org.bouncycastle.cert.ocsp.CertificateID getOCSPCertificateID(CertificateToken cert,
                                                                            CertificateToken issuerCert)

Returns the CertificateID for the given certificate and its issuer's certificate.

Parameters:

cert - CertificateToken for which the id is created

issuerCert - CertificateToken issuer certificate of the cert

Returns:

CertificateID

getSHA1DigestCalculator

public static org.bouncycastle.operator.DigestCalculator getSHA1DigestCalculator()

loadOCSPBase64Encoded

public static org.bouncycastle.cert.ocsp.BasicOCSPResp loadOCSPBase64Encoded(String base64Encoded)
                                                                      throws IOException

This method loads an OCSP response from the given base 64 encoded string.

Parameters:

base64Encoded - base 64 encoded OCSP response

Returns:

the BasicOCSPResp object

Throws:

IOException - if IO error occurred

loadOCSPFromBinaries

public static org.bouncycastle.cert.ocsp.BasicOCSPResp loadOCSPFromBinaries(byte[] binaries)
                                                                     throws IOException

This method loads an OCSP response from the given binaries.

Parameters:

binaries - byte array of OCSP response

Returns:

the BasicOCSPResp object

Throws:

IOException - if IO error occurred

getEncoded

public static byte[] getEncoded(org.bouncycastle.cert.ocsp.OCSPResp ocspResp)

getDSSResponderId

public static ResponderId getDSSResponderId(org.bouncycastle.cert.ocsp.RespID respID)

Transforms RespID to ResponderId

Parameters:

respID - RespID to get values from

Returns:

ResponderId

getJdbcKey

public static String getJdbcKey(CertificateToken certificateToken,
                                CertificateToken issuerCertificateToken)

Creates the identifier for a certain entry within jdbc.

Parameters:

certificateToken - CertificateToken

issuerCertificateToken - CertificateToken of the issuer of the certificateToken

Returns:

the identifier for jdbc

getCRLRevocationTokenKeys

public static List<String> getCRLRevocationTokenKeys(CertificateToken certificateToken)

Initialize a list revocation token keys String for CRLToken from the given CertificateToken

Parameters:

certificateToken - CertificateToken

Returns:

list of String revocation keys

getCRLRevocationTokenKey

public static String getCRLRevocationTokenKey(String crlUrl)

getOcspRevocationTokenKeys

public static List<String> getOcspRevocationTokenKeys(CertificateToken certificateToken)

Initialize a list revocation token keys String for OCSPToken from the given CertificateToken

Parameters:

certificateToken - CertificateToken

Returns:

list of String revocation keys

getOcspRevocationKey

public static String getOcspRevocationKey(CertificateToken certificateToken,
                                          String ocspUrl)